Password resetting method
First Claim
Patent Images
1. A system comprising:
- authentication data to control a user'"'"'s access to data;
a user interface to receive, before the user loses the authentication data, user preference information related to a plurality of user initiated procedures for resetting the authentication data to deal with future user side loss of the authentication data, wherein a user initiation is required each time when each of the procedures is executed, and wherein the user preference information is stored in a user profile and can be directly changed by the user through the user interface; and
a selector to select, based on the user preference information, a procedure from the plurality of procedures for resetting the authentication data, the selected procedure to be activated to reset the authentication data when the authentication data is lost by the user or a user request to reset the authentication data is received;
wherein the user is allowed to change the user preference information, through the user interface, before the user loses the authentication data, when user'"'"'s security requirement changes, causing the selector to select a different procedure from the plurality of user initiated procedures.
0 Assignments
0 Petitions
Accused Products
Abstract
A system and method for automatically selecting a procedure for resetting an authentication data, such as a password, a PIN, a secret key, or a private key, according to the value of the user data protected by the authentication data and/or the likelihood for the user to forget or otherwise lose the authentication data. The user'"'"'s preference is also considered in selecting the procedure for resetting the authentication data.
39 Citations
28 Claims
-
1. A system comprising:
-
authentication data to control a user'"'"'s access to data; a user interface to receive, before the user loses the authentication data, user preference information related to a plurality of user initiated procedures for resetting the authentication data to deal with future user side loss of the authentication data, wherein a user initiation is required each time when each of the procedures is executed, and wherein the user preference information is stored in a user profile and can be directly changed by the user through the user interface; and a selector to select, based on the user preference information, a procedure from the plurality of procedures for resetting the authentication data, the selected procedure to be activated to reset the authentication data when the authentication data is lost by the user or a user request to reset the authentication data is received; wherein the user is allowed to change the user preference information, through the user interface, before the user loses the authentication data, when user'"'"'s security requirement changes, causing the selector to select a different procedure from the plurality of user initiated procedures. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 23, 24, 25)
-
-
11. A method comprising:
-
using authentication data to control a user'"'"'s access to data; receiving by a processor, through a user interface, before the user loses the authentication data, user preference information related to a plurality of user initiated procedures for resetting the authentication data to deal with future user side Joss of the authentication data, wherein a user initiation is required each time when each of the procedures is executed, and wherein the user preference information is stored in a user profile and can be directly changed by the user through the user interface; selecting, based on the user preference information, a procedure from the plurality of user initiated procedures for resetting the authentication data; allowing the user to change the user preference information, through the user interface, before the user loses the authentication data, when user'"'"'s security requirement changes, causing a different procedure to be selected from the plurality of user initiated procedures; receiving an indication that the authentication data is lost by the user or a user request to reset the authentication data; and activating the selected procedure to reset the authentication data upon receiving the indication or the user request. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20, 26, 27, 28)
-
-
21. A method comprising:
-
determining, by a processor, that an automatic selection of password reset procedure to reset a password for authenticating a user'"'"'s access to data is enabled; determining, by the processor, a value associated with the data, or a likelihood of the password is lost; selecting a password reset procedure from a plurality of user initiated password reset procedures based on the determined value or determined likelihood, wherein a user initiation is required each time when each of the procedures is executed; receiving, through a user interface, before the user loses the authentication data, user preference information related to the plurality of user initiated password reset procedures to deal with future user side Joss of the password, wherein the user preference information is stored in a user profile and can be directly changed by the user through the user interface; determining whether the user preference information is consistent with the selected password reset procedure; and when it is determined that the user preference information is consistent with the selected password reset procedure, activating the selected password reset procedure upon receiving an indication that the password is lost by the user or receiving a user request to reset the password; allowing the user to change the user preference information through the user interface, before the user loses the authentication data, when user'"'"'s security requirement changes, causing a different procedure to be selected from the plurality of user initiated procedures. - View Dependent Claims (22)
-
Specification